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© Method for the identification of users of telematics servers. 



© Telematics system, comprising a telecommuni- 
cations system and an independent identification 
server, suitable and designed for identification and 
possibly verification of subscribers who wish to 
make use of telematics servers likewise linked to 



said telecommunications system. The identification 
server works for a plurality of telematics servers, as 
a result of which the identification/verification proce- 
dure is uniform for all those telematics servers. 
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terminal and the identification server, and the termi- 
nal or a terminal server transmitting a terminal 
identifier (TID) to the identification server, the user 
further sending his user identifier (UID) to the iden- 
tification server, which compares this with user 
identifiers previously stored in the identification 
server and, in the event of agreement between one 
of said stored user identifiers and the identifier 
received, sends said identifier or an image thereof 
(UID 1 ) to a telematics server selected by the user. 
The invention also comprises an identification serv- 
er which is eminently able to form part of the 
telematics system according to the invention. 

C. REFERENCES 

None. 

D. ILLUSTRATIVE EMBODIMENTS 

Fig. 1 shows, in the form of a diagram; a first 
illustrative embodiment of a telematics system ac- 
cording to the invention in which the method pre- 
sented can be implemented. Fig. 2 shows a slightly 
different illustrative embodiment. 

Fig. t shows a telecommunications system to 
which a terminal is connected, an identification 
server and a telematics server, for example a com- 
puter system for on-line enquiry for data. Via the 
terminal - for example a PC with modem and 
communications software - a user can activate a 
telecommunications link to the telematics server 
required. At the same time - or directly afterwards - 
a link can be activated to the identification server. 
Via the first link, a terminal identifier TID is sent to 
the selected telematics server (1); via the last link/ 
the same terminal identifier TID is sent to the 
identification server, together with a code TMS 
which indicates the telematics server selected (2). 
Said identification server then carries out an iden- 
tification protocol which consists in the identifica- 
tion server asking the user for his user identifier 
VID (3), the user sending the latter (4), and the 
latter being looked up by the identification server in 
a register containing user identifiers. At the same 
time, an associated user verifier is looked up, as 
well as user codes UID* applicable to the different 
telematics servers (one user can be known under 
different user codes to different telematics servers). 
The user is then asked for his verifier (password) 
(5), the user sends the latter (6), and that verifier is 
compared with the verifier from the register. In the 
event of agreement, a link is activated, on the basis 
of the telematics server TMS selected, to that 
telematics server, and the terminal identifier TID 
and the user code (from the register of the iden- 
tification server) is sent to the telematics server (7). 
A better method of verification is, for example, the 



"challenge signed response" method. This involves 
the user sending his verifier to the identification 
server, after which the identification server sends a 
random code string to the user who enciphers this 

5 string with a secret key (for example stored in a 
smart card) and sends the encipherment result to 
the identification server. The identification server 
deciphers that enciphered string with the aid of a 
key which is related to the verifier received. Thus 

70 the user can prove his identity, Then, links between 
the terminal and the identification server, and be- 
tween the identification server and the telematics 
server are broken, and the user is able to exchange 
messages via the link between his terminal and the 

75 telematics server selected, no further identifica- 
tion/verification procedure being necessary. After 
receiving the user code UID 1 , the telematics server 
has also been able tb find previously stored further 
user data, for example concerning the settling of 

20 charges relating to the use of the service. 

The illustrative embodiment shown diagram- 
matically in Fig. 2 differs from the above illustrative 
embodiment insofar as the telematics server, after 
receiving the terminal identifier TID from the termi- 

25 nal (1), activates a link to the identification server 
and via this link sends the terminal identifier (2). 
Thereupon, the identification server activates a link 
to the terminal and asks for the user identifier UID 
of the user (3). The verification protocol proceeds 

30 as indicated above (4, 5, 6). In the event of a 
positive result, the user, code UID 1 , valid for the 
telematics server selected, of the user is sent to 
the telematics server which then breaks the link to 
the identification server. The link between the iden- 

35 tification server and the terminal is also broken, 
and further messages are exchanged between the 
terminal and the telematics server. In the case of 
this last option, the TID is therefore not sent di- 
rectly to the identification server, as for the first 

40 option, but via the telematics server. After the TID 
has been received, the identification server ac- 
tivates a link to the terminal whose TID had been 
received. 

The identification server thus serves for execut- 
45 ing an identification and verification protocol (log-in 
protocol) for any other telematics server. The ad- 
vantage is that users always deal with the same 
identification server and are always able to log in in 
the same manner and always using the same iden- 
50 tifier and verifier, even if the telematics servers 
change. This method is eminently applicable in an 
ISDN system in which one terminal is able to 
activate two links simultaneously, in this case to the 
identification server and the telematics server. 
55 ISDN is not a precondition, however, since the links 
need not necessarily be active simultaneously, but 
may alternatively be activated successively. 
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